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Period for Reply 



A SHORTENED STATUTORY PERIOD FOR REPLY IS SET TO EXPIRE 3 MONTH(S) OR THIRTY (30) DAYS, 
WHICHEVER IS LONGER, FROM THE MAILING DATE OF THIS COMMUNICATION. 

- Extensions of time may be available under the provisions of 37 CFR 1.136(a). In no event, however, may a reply be timely filed 
after SIX (6) MONTHS from the mailing date of this communication. 

- If NO period for reply is specified above, the maximum statutory period will apply and will expire SIX (6) MONTHS from the mailing date of this communication. 

- Failure to reply within the set or extended period for reply will, by statute, cause the application to become ABANDONED (35 U.S.C. § 133). 
Any reply received by the Office later than three months after the mailing date of this communication, even if timely filed, may reduce any 
earned patent term adjustment. See 37 CFR 1.704(b). 

Status 

1)^ Responsive to communication(s) filed on 31 August 2005 . 
2a)M This action is FINAL. 2b)Q This action is non-final. 

3) D Since this application is in condition for allowance except for formal matters, prosecution as to the merits is 

closed in accordance with the practice under Ex parte Quay/e, 1935 CD. 11, 453 O.G. 213. 

Disposition of Claims 

4) K Claim(s) 1.3.4,6-13,15.16 and 18-24 is/are. pending in the application. 

4a) Of the above claim(s) is/are withdrawn from consideration. 

5) D Claim(s) is/are allowed. 

6) I3 Claim(s) 1.3.4.6-13.15.16 and 18-24 is/are rejected. 

7) D Claim(s) is/are objected to. 

8) D Claim(s) are subject to restriction and/or election requirement. 

Application Papers 

9) D The specification is objected to by the Examiner. 

10) D The drawing(s) filed on is/are: a)D accepted or b)D objected to by the Examiner. 

Applicant may not request that any objection to the drawing(s) be held in abeyance. See 37 CFR 1 .85(a). 
Replacement drawing sheet(s) including the correction is required if the drawing(s) is objected to. See 37 CFR 1.121(d). 

11) D The oath or declaration is objected to by the Examiner. Note the attached Office Action or form PTO-152. 

Priority under 35 U.S.C. § 1 1 9 

12) D Acknowledgment is made of a claim for foreign priority under 35 U.S.C. § 1 19(a)-(d) or (f). 
a)D All b)D Some * c)Q None of: 

1 .□ Certified copies of the priority documents have been received. 

2. Q Certified copies of the priority documents have been received in Application No. . 

3. Q Copies of the certified copies of the priority documents have been received in this National Stage 

application from the International Bureau (PCT Rule 17.2(a)). 
* See the attached detailed Office action for a list of the certified copies not received. 
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DETAILED ACTION 

Response to Arguments 
1 . Applicant's arguments filed 8/29/2005 have been fully considered but they are not 
persuasive. 

The applicant argues with respect to claim 1 that Riggins US 6,233,341 does not teach a 
directory for short-term authorization information related to the user. As the Examiner as 
stated in the preceding office actions, Riggins teaches short-term authorization 
information, and that it is widely accepted that information on computers is stored in 
directories. The applicant also argues that Riggins does not teach binding the information 
of the long-term certificate to the short-term certificate and authorization information. 
The examiner points to Riggins column 15, lines 10-35, which state "the temporary 
certificate server retrieves the long-term certificate into the package". . . ."uses the private 
key to generate a signature for the items appended the package" thus Riggins teaches 
binding the long-term certificate information with the short-term certificate. 

The applicant argues that Asay US 5, 903,882 does not teach a short-term certificate that 
is not subject to revocation. The applicant's argument relies on the statement that Asay 
teaches in certain circumstances, the certificate is subject to revocation. The applicant 
admits in the argument, and cites column 3 lines 1-4 that Asay also teaches in other 
circumstances that Asay's certificate is NOT subject to revocation. The examiner asserts 
that by teaching both revocation, and non-revocation as the applicant admits, Asay is 
sufficient to meet the limitations in claim 1 . 
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The applicant argues that Riggins teaches away because it cites a revocation list. The 
examiner cites column 10 lines 38-57, and column 13 lines 40-52. Similar to Asay, 
Riggins provides for certificates, that have reached their expiration point, not to be listed 
on the CRL. Riggins teaches only certificates which have not yet expired are listed on 
the CRL. Similar to Asay, Riggins the teaching of both revocation and non-revocation is 
sufficient to meet a reasonable expectation of success for the suggested combination, as 
well as to meet the limitations in claim 1. 

The previous office action is repeated below, modified only to comply with the 
applicant's sighting that Claims 1, and 13 are rejected based on the combination of 
Chapman in view of Riggins in view of Asay due to the previous amendment including 
the limitations of claims 5, and 17, into claims 1, and 13. 



Claim Rejections - 35 USC § 103 
The following is a quotation of 35 U.S. C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set forth in 
section 102 of this title, if the differences between the subject matter sought to be patented and the prior art are 
such that the subject matter as a whole would have been obvious at the time the invention was made to a person 
having ordinary skill in the art to which said subject matter pertains. Patentability shall not be negatived by the 
manner in which the invention was made. 



2. Claims 1, 3, 4, 6, 8, 10, 13, 14, 15, 16, 18, 20 and 22 are rejected under 35 U.S.C. 
103(a) as being unpatentable over Chapman US 6,058,484 in view of Riggins US 
6,233,341. 
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As per claims 1,4 13, and 16 Chapman discloses a certificate authority issuing a long- 
term public key identity certificate (certificate) that binds a public key of the user to long 
term identification information (identifying information) related to the user, (Col 7 lines 
57-67). 

Chapman does not disclose a short-term public key certificate. 

Riggins discloses a certificate authority (global server) for issuing a short term public key 
credential certificate (certificates that are short lived), (Col 3 lines 33-43). The certificate 
binds the public key of the user to long term identification information (long term 
certificate) and to short term authorization information (validity information, name, serial 
number), (Col 15 lines 13-35). The user presents this short term certificate to an 
application (web server) for authorization, (Col 14 lines 25-35). The client demonstrates 
knowledge of a private key corresponding to the public key in the certificate, (Col 2 lines 
35-48). 

It would be obvious to modify Chapman's PKI system with a short term certificate of 
Riggins to keep a Certificate Revocation list small in order to reduce network traffic. 

Asay discloses that a certificate that becomes invalid by age need not be on the schedule 
of the CRL, because the age has already rendered the short term certificate invalid, (Col 3 
lines 1-4). 

It would be obvious to modify the previous Chapman-Riggins PKI system with Asay's 
CRL to enable reduced network traffic. 
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As per claim 3, and 15 Chapman does not disclose a short term certificate. 

Riggins discloses that the expiration date is sufficiently short (limited amount of time), 

(Col 3 lines 33-38). 

As per claims 6, and 18, Chapman does not disclose a short term certificate. 

Riggins discloses a short term certificate in a non structured form, (Fig 13). 

As per claims 8, and 20, Chapman discloses using a X.509 certificate, (Col 8 lines 33- 

43). Chapman does not disclose a shot term certificate. 

Riggins discloses a short term certificate, (Col 3 lines 33-43). 

It would be obvious to one skilled in the art to modify Chapman's x.509 with Riggins's 
short term certificate, because the 509 format is supported by a number of different 
protocols, (Chapman Col 8 line 43), and the short term certificate need not be checked by 
CRLs. 

As per claims 10, and 22, Chapman discloses memory, (Col 9 line 2). The long term 
certificate must be stored in the directory to be retrieved. 

Claims 7, 9, 19, and 21 are rejected under 35 U.S.C. 103(a) as being unpatentable 
over Chapman US 6,058,484 in view of Riggins US 6,233,341 in view of Howell US 
5,276,901. 

As per claims 7, and 19, Chapman-Riggins discloses a short term certificate. Chapman- 
Riggins does not disclose a structured certificate. 



Application/Control Number: 09/483, 1 85 Page 6 

Art Unit: 2134 

Howell discloses a certificate with access restricted folders contained therein (Col 5 lines 
23-30). 

It would be obvious to one skilled in the art to modify Chapman-Riggins with Howell's 
restricted access to increase security. 

As per claims 9, and 21, Chapman-Riggins discloses using a short term X.509 certificate, 

(Chapman Col 8 lines 33-43). 

Howell discloses restricted folders, (Col 5 line 23). 

It would be obvious to one skilled in the art to modify Chapmans x.509 with Howell's 
restricted folders, because the 509 format is supported by a number of different protocols, 
(Col 8 line 43), and the restricted folders add a measure of security. 

Claims 11, and 23 are rejected under 35 U.S.C 103(a) as being unpatentable over 
Chapman US 6,058,484 in view of Riggins US 6,233,341 in view of Maruyama US 
6,393,563. 

As per claims 1 1, and 23 Chapman-Riggins does not disclose a smart card. 
Maruyama disclose a private key may be stored on a smartcard, (Col 1 line 20, 53-56). 
It would be obvious to modify the Chapman-Riggins combination with Maruyama' s 
smart card, because the smart card increases the security of key storage. 
Claims 12, and 24 are rejected under 35 U.S.C. 103(a) as being unpatentable over 
Chapman US 6,058,484 in view of Riggins US 6,233,341 in view of Kausik US 
6,263,446. 

As per claims 12, and 24, Chapman-Riggins does not disclose a software wallet. 
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Kausik discloses storing a private key in a software wallet, (Col 4 lines 1-6). 

It would be obvious to modify the Chapman-Riggins combination with Kausik's software 

wallet because the wallet increases the security of key storage. 

Conclusion 

3. THIS ACTION IS MADE FINAL. Applicant is reminded of the extension of time 
policy as set forth in 37 CFR 1.136(a). 

A shortened statutory period for reply to this final action is set to expire THREE 
MONTHS from the mailing date of this action. In the event a first reply is filed within 
TWO MONTHS of the mailing date of this final action and the advisory action is not 
mailed until after the end of the THREE-MONTH shortened statutory period, then the 
shortened statutory period will expire on the date the advisory action is mailed, and any 
extension fee pursuant to 37 CFR 1. 136(a) will be calculated from the mailing date of the 
advisory action. In no event, however, will the statutory period for reply expire later than 
SIX MONTHS from the mailing date of this final action. 
Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Christopher J. Brown whose telephone number is 
(571)272-3833. The examiner can normally be reached on 8:30-6:00. 
If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Gregory Morse can be reached on (571)272-3838. The fax phone number for 
the organization where this application or proceeding is assigned is 571-273-8300. 
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Information regarding the status of an application may be obtained from the Patent 
Application Information Retrieval (PAIR) system. Status information for published 
applications may be obtained from either Private PAIR or Public PAIR. Status 
information for unpublished applications is available through Private PAIR only. For 
more information about the PAIR system, see http://pair-direct.uspto.gov. Should you 
have questions on access to the Private PAIR system, contact the Electronic Business 
Center (EBC) at 866-217-9197 (toll-free). 

Christopher J. Brown 1 1/4/05 





